Authentik: A Front End for NPM

Scotti-BYTE Enterprise Consulting Services

Подписаться 5 тыс.

Просмотров 4,1 тыс.

50% 1

Complete the survey at: survey.scottib...
Authentik is an Identification and Access Management (IAM) application designed to front end web servers or reverse proxy servers. Authentik has a comprehensive web front end to configure IAM services and Multi-Factor authentication that makes adding additional authorization to your apps easy.
Authentik has numerous features and supports the NginX webserver, Traefix and Caddy, but I am going to focus on using Authentik specifically with NginX Proxy Manager (NPM).
Show Notes:
discussion.sco...
------------
Come visit us at: www.scottibyte...
Discourse: : discussion.sco...
RocketChat: chat.scottibyt...

Опубликовано:

13 окт 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 24

@panagiotiskapsiotis2263 Год назад

Seriously Scott. Lately, you blow my mind every time a new video is posted. It is like you are following what I am also trying to accomplish. Thank you for your work. I have learned so much from your channel. Well presented, without loose ends, with blog posts to get the code, and more importantly, with a ton of already made, less advanced videos to go back if one is stuck. Your channel is like it is telling a "story" (I would say a "novel" ...🙂) and thus it is so easy to follow. MANY THANKS!!!!

@scottibyte Год назад

Thanks so much for the kind comments. After spending 40 years in IT Infrastructure design, I felt as though SOHO users needed all the jargon demystified. I wanted to give back. I was hoping to derive at least grocery money, although after 149 videos and over a year and a half, I have earned right at $200 from RU-vid. I enjoy what I do and so its a labor of love. Come by and chat sometime on chat.scottibyte.com/.

@bturnbough Год назад

Thanks for the video. MUCH appreciated! I've started using NPM recently and like it for the most part. One thing I'm REALLY missing is RADIUS based auth for my npm / web auth portal. I'd LOVE it if someone could post something integrating this product into that.....

@scottibyte Год назад

Authentik supports Radius. Glad you like the video. Chat on chat.scottibyte.com/

@erichb.1396 Год назад

Hi, this is a great video, well done and I was able to replicate the installation on my Proxmox in the LXC container 1:1. Now I have a question: Does the app to be protected with Authentik have to run on the same server or can the app also run on another server (Synology NAS, Docker)? Kind regards an Thanks

@scottibyte Год назад

In my example using NPM, if the app has a proxy entry in NPM, then it can be protected with Authentik. I have apps on different servers that I protect.

@erichb.1396 Год назад

@@scottibyte That sounds good to me. Yes, NPM is in use. I'm going to give it a try. ;-)

@scottibyte Год назад

@@erichb.1396 Good to hear. Come by chat.scottibyte.com/ to chat if you like.

@TheTorsti 6 месяцев назад

Clear and understandable video, thank you for that. But I have a question... Despite the settings as in the video, of course with my IPs and domains, the app that was set up is simply passed on by Authentik without logging in and therefore opens directly. I also entered the code snippet in NPM, adapting it to my internal IP where authentication is installed. The login to Authentik works when I access the Authentik page, but not when I access the set up app. Did I miss something?

@scottibyte 6 месяцев назад

Thanks for the kudo! I think you are spot on. One of the issues with Authentik is that once you authorize or login with a particular browser, that authentication is effective for a time period. One such example is I have a web based "scanner" app I featured on the channel and it has no built in authentication. I have authentik configured for it and once I log into it, it keeps that logged in status for awhile. In your setup/testing, I suggest using one browser to do your configuration and another browser for testing. An example would be to use both Chrome and Firefox. Be sure to join the chat at chat.scottibyte.com/.

@TheTorsti 6 месяцев назад

@@scottibyte thanks for the fast respond. I tried it with the edge browser and it seems to work. I will read through various instructions again to see whether it is possible to have a new login time or the session ends after minute x.

@scottibyte 6 месяцев назад

@@TheTorsti As close as I can determine, authentik uses cookies that are set to expire. Chat over on chat.scottibyte.com/ rather than in the RU-vid comments if you could please.

@KeesFluitman Год назад

why did you create the docker outpost integration?

@gabriel99999-r 9 месяцев назад

dose this setup allows redis and pg database accessible from internet if we don't use a container ?

@scottibyte 9 месяцев назад

You would have to secure it separately and that depends on your network configuration. You would also have to perform your own updates to it manually rather than using a simple docker pull to upgrade it.

@jonathandoe7490 Год назад

I am having a problem passing heimdall dashboard through, when I add the script in the advanced tab it prompts me to login but when I do the page is not loaded correctly. Please help

@scottibyte Год назад

Interesting. Join the chat at chat.scottibyte.com/ to ask questions.

@AinzOoalG0wn 11 месяцев назад

got any guide for traefik + authentik? how do u do the traefik labels for authentik, traefik, and an example container app? that would be a great video. too many npm+authentik guides lately :{

@scottibyte 11 месяцев назад

I looked at traefik and honestly it is only appealing if you have a whole load of Docker apps on a single docker host. I don't advocate that as a best practice and so NPM is my go-to for its simplicity and reliability. Honestly the only thing that should be different is the code you inject into your traefik configuration for each service. In the "provider" section, the have code for traefik (ingress), traefik (compose) and traefik (standalone) and that should be the only differences from what I described in my video.

@AinzOoalG0wn 11 месяцев назад

@@scottibyte ty for the explanation. was wondering why there so many npm + authentikator videos. now i know why >_

@scottibyte 11 месяцев назад

@@AinzOoalG0wn I've heard of the "looping" issue with traefik. Honestly I have never run traefik, so it's hard for me to comment. Consider logging on to Brian's Awesome Open Source RocketChat channel at discuss.opensourceisawesome.com/ and posting there for additional help.

@AinzOoalG0wn 11 месяцев назад

@@scottibyte ty i will check it out 🙏